CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-42160

D-Link COVR 1200,1202,1203 v1.08 was discovered to contain a command injection vulnerability via the system_time_timezone parameter at function SetNTPServerSettings.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.037

EPSS Ranking 87.5%

CVSS Severity

CVSS v3 Score 8.8

References

https://github.com/14isnot40/vul_discovery/blob/master/D-Link%20COVR%2012xx%20.pdf
https://www.dlink.com/en/security-bulletin/
https://github.com/14isnot40/vul_discovery/blob/master/D-Link%20COVR%2012xx%20.pdf
https://www.dlink.com/en/security-bulletin/

Products affected by CVE-2022-42160

Dlink » Covr 1200 » Version: N/A

cpe:2.3:h:dlink:covr_1200:-
Dlink » Covr 1202 » Version: N/A

cpe:2.3:h:dlink:covr_1202:-
Dlink » Covr 1203 » Version: N/A

cpe:2.3:h:dlink:covr_1203:-
Dlink » Covr 1200 Firmware » Version: 1.08

cpe:2.3:o:dlink:covr_1200_firmware:1.08
Dlink » Covr 1202 Firmware » Version: 1.08

cpe:2.3:o:dlink:covr_1202_firmware:1.08
Dlink » Covr 1203 Firmware » Version: 1.08

cpe:2.3:o:dlink:covr_1203_firmware:1.08

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-42160

Products

Pricing

Contact Us